CVE-2011-1900
InduSoft Web Studio <7.0+Patch 1 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 6.1 and 7.x before 7.0+Patch 1 allows remote attackers to execute arbitrary code via an invalid request.
Exploits (1)
metasploit
WORKING POC
by Unknown, juan vazquez · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/scada/indusoft_ntwebserver_fileaccess.rb
Scores
EPSS
0.4926
EPSS Percentile
97.7%
Classification
CWE
CWE-22
Status
draft
Affected Products (2)
indusoft/web_studio
indusoft/web_studio
Timeline
Published
May 04, 2011
Tracked Since
Feb 18, 2026